Pearlman Aesthetic Surgery Data Breach Affects 11,764 Patients

On Nov. 9, 2025, Steven J. Pearlman MD PC (Pearlman Aesthetic Surgery), a well-known facial plastic and reconstructive surgery practice in Manhattan, reported a significant data breach to the U.S. Department of Health and Human Services on Nov. 9, 2025. According to the official disclosure, the incident affected 11,764 current and former patients across the U.S.

The breach involved unauthorized access to sensitive information held by the practice. While the specifics of the attack vector and the identity of the responsible party have not been made public, the breach was severe enough to require notification under federal law.

The exposed information may have included both personally identifiable information (PII) and protected health information (PHI). This could encompass names, contact details, dates of birth, medical histories, treatment information, and possibly insurance or payment data. The exposure of PII and PHI puts individuals at risk of identity theft and medical fraud.

Pearlman Aesthetic Surgery's response

In response to the breach, Pearlman Aesthetic Surgery has taken steps to comply with federal notification requirements, including informing affected individuals and regulatory authorities.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Steven J. Pearlman or Pearlman Aesthetic Surgery.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

The company may also provide additional resources or support, such as credit monitoring or identity theft protection, though details should be confirmed directly with the practice.